CVE-2023-47471

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 16, 2023

Updated: Nov 30, 2023

CWE ID 120

Summary

CVE-2023-47471 is a buffer overflow vulnerability affecting the libde265 library version 1.10.12 in the strukturag project. An attacker can exploit this flaw in the slice.cc component's slice_segment_header function, leading to a denial-of-service condition. By sending crafted input, a local adversary can manipulate the buffer, causing it to exceed its boundaries and potentially crashing the application or system. This vulnerability poses a significant risk, particularly in environments where the application is regularly updated or runs with elevated privileges.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tSpRC4
https://www.cve.org/CVERecord?id=CVE-2023-47471
https://nvd.nist.gov/vuln/detail/CVE-2023-47471

Back to Vulnerability Database

CVE-2023-47471

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations